CVE-2024-2465

Open redirection vulnerability in CDeX application allows to redirect users to arbitrary websites via a specially crafted URL.This issue affects CDeX application versions through 5.7.1...

CVE-2024-2463

Weak password recovery mechanism in CDeX application allows to retrieve password reset token.This issue affects CDeX application versions through 5.7.1...

CVE-2024-2464

This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users.This issue affects CDeX application versions through 5.7.1...

CVE-2024-2464

This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users.This issue affects CDeX application versions through 5.7.1...

CVE-2024-2465

Open redirection vulnerability in CDeX application allows to redirect users to arbitrary websites via a specially crafted URL.This issue affects CDeX application versions through 5.7.1...

CVE-2024-2463

Weak password recovery mechanism in CDeX application allows to retrieve password reset token.This issue affects CDeX application versions through 5.7.1...

CVE-2024-2463

Weak password recovery mechanism in CDeX application allows to retrieve password reset token.This issue affects CDeX application versions through 5.7.1...

CVE-2024-2465 Open redirection in CDeX

Open redirection vulnerability in CDeX application allows to redirect users to arbitrary websites via a specially crafted URL.This issue affects CDeX application versions through 5.7.1...

CVE-2024-2465 Open redirection in CDeX

Open redirection vulnerability in CDeX application allows to redirect users to arbitrary websites via a specially crafted URL.This issue affects CDeX application versions through 5.7.1...

CVE-2024-2465

Open redirection vulnerability in CDeX enables redirection to arbitrary websites via a crafted URL and affects CDeX versions up to 5.7.1, per RH and NVD entries. No remediation or exploit specifics are provided in the connected documents.

CVE-2024-2464

This CVE concerns CDeX: a flaw in the password-recovery flow that reveals whether a given user exists by differences in the returned messages. The Red Hat entries describe that an attacker could use this to perform a targeted brute-force attack against valid usernames, with affected versions list...

CVE-2024-2463 Weak password recovery mechanism in CDeX

Weak password recovery mechanism in CDeX application allows to retrieve password reset token.This issue affects CDeX application versions through 5.7.1...

CVE-2024-2463

CVE-2024-2463 describes a weak password recovery mechanism in the CDeX application that allows retrieval of a password reset token, affecting versions up to 5.7.1. The Red Hat and NVD entries confirm the issue and its impact on password reset flows. The generic details do not specify vulnerable c...

CVE-2024-2463 Weak password recovery mechanism in CDeX

Weak password recovery mechanism in CDeX application allows to retrieve password reset token.This issue affects CDeX application versions through 5.7.1...

CDeX 安全漏洞

CDeX is a free software package from CDeX Inc. for extracting digital audio from audio CDs and converting audio formats for Microsoft Windows. A security vulnerability exists in CDeX 5.7.1 and earlier versions that originated from allowing an attacker to conduct a brute force attack against a val...

PT-2024-20487 · Cdex · Cdex

Name of the Vulnerable Software and Affected Versions: CDeX application versions through 5.7.1 Description: The issue is an open redirection vulnerability in the CDeX application, allowing attackers to redirect users to arbitrary websites via a specially crafted URL. Recommendations: For versions...

CDeX 安全漏洞

CDeX is a free software package from CDeX Inc. It is used to extract digital audio from audio CDs and convert audio formats for Microsoft Windows. A security vulnerability exists in CDeX 5.7.1 and earlier versions that stems from the presence of an open redirection vulnerability. An attacker can...

PT-2024-20485 · Cdex · Cdex

Name of the Vulnerable Software and Affected Versions: CDeX application versions through 5.7.1 Description: The issue is related to a weak password recovery mechanism in the CDeX application, which allows the retrieval of a password reset token. Recommendations: For versions through 5.7.1, update...

CDeX 安全漏洞

CDeX is a free software package from CDeX Inc. for extracting digital audio from audio CDs and converting audio formats for Microsoft Windows. A security vulnerability exists in CDeX 5.7.1 and earlier versions that stems from the presence of a weak password recovery mechanism that allows retrieva...

CDex Local Stack Buffer Overflow Vulnerability

CDex is a conversion tool that supports all audio formats. CDex suffers from a local stack buffer overflow vulnerability. A local attacker can exploit this vulnerability to execute arbitrary code in the context of an affected application, with a failed attack resulting in a denial of service...